Difference between revisions of "Terraform resource: aws cloudfront distribution"

From wikieduonline
Jump to navigation Jump to search
 
(12 intermediate revisions by the same user not shown)
Line 2: Line 2:
  
 
Required:  
 
Required:  
* [[origin_id]] (Required) - Unique identifier for the origin
+
* <code>[[origin_id]]</code> (Required) - Unique identifier for the origin
 
* <code>[[origin argument in aws_cloudfront_distribution resource|origin]]: [[domain_name]], [[origin_id]]</code>
 
* <code>[[origin argument in aws_cloudfront_distribution resource|origin]]: [[domain_name]], [[origin_id]]</code>
* [[enabled]]
+
* <code>[[enabled]]</code>
* <code>[[default_cache_behavior]]</code>: [[cache_policy_id]]
+
* <code>[[default_cache_behavior]]</code>: <code>[[cache_policy_id]]</code>
* [[restrictions]]
+
* <code>[[restrictions]]</code>
* [[viewer_certificate]]
+
* <code>[[viewer_certificate]]</code>
  
 
Optional:
 
Optional:
 
* <code>[[aliases]]</code> (optional) - Extra [[CNAMEs]] (alternate domain names), if any, for this distribution.
 
* <code>[[aliases]]</code> (optional) - Extra [[CNAMEs]] (alternate domain names), if any, for this distribution.
* [[origin_access_control_id]] (Optional)  
+
* <code>[[origin_access_control_id]]</code> (Optional)  
 +
* <code>[[headers]]</code>
  
 
== Official example ==
 
== Official example ==
Line 19: Line 20:
  
 
== Import ==
 
== Import ==
[[terraform import]] aws_cloudfront_distribution.distribution E74FTE3EXAMPLE
+
* <code>[[terraform import]] aws_cloudfront_distribution.distribution E74FTE3EXAMPLE</code>
  
 
* <code>[[trusted_key_groups]]</code>
 
* <code>[[trusted_key_groups]]</code>
 
  
 
== Related terms ==
 
== Related terms ==
Line 30: Line 30:
 
* <code>[[aws cloudfront create-distribution]]</code>
 
* <code>[[aws cloudfront create-distribution]]</code>
 
* [[Terraform resource: aws cloudfront origin access control]]
 
* [[Terraform resource: aws cloudfront origin access control]]
 +
* <code>[[AWS::CloudFront::Distribution]]</code>
 +
* [[CORS]]
 +
* <code>[[aws_acm_certificate_validation]]</code>
 +
* <code>[[aws_route53_record]]</code>
  
 
== Activities ==
 
== Activities ==
Line 37: Line 41:
 
* {{aws_cloudfront_distribution}}
 
* {{aws_cloudfront_distribution}}
 
* {{Terraform CloudFront}}
 
* {{Terraform CloudFront}}
 
  
 
[[Category:Terraform]]
 
[[Category:Terraform]]
 +
[[Category:CloudFront]]
 
[[Category:AWS]]
 
[[Category:AWS]]

Latest revision as of 16:33, 31 October 2024

aws_cloudfront_distribution [1] terraform resource.

Required:

Optional:

Official example[edit]

resource "aws_s3_bucket" "b" {
  bucket = "mybucket"

  tags = {
    Name = "My bucket"
  }
}

resource "aws_s3_bucket_acl" "b_acl" {
  bucket = aws_s3_bucket.b.id
  acl    = "private"
}

locals {
  s3_origin_id = "myS3Origin"
}

resource "aws_cloudfront_distribution" "s3_distribution" {
  origin {
    domain_name              = aws_s3_bucket.b.bucket_regional_domain_name
    origin_access_control_id = aws_cloudfront_origin_access_control.default.id
    origin_id                = local.s3_origin_id
  }

  enabled             = true
  is_ipv6_enabled     = true
  comment             = "Some comment"
  default_root_object = "index.html" 

  logging_config {
    include_cookies = false
    bucket          = "mylogs.s3.amazonaws.com"
    prefix          = "myprefix"
  }

  aliases = ["mysite.example.com", "yoursite.example.com"]

  default_cache_behavior {
    allowed_methods  = ["DELETE", "GET", "HEAD", "OPTIONS", "PATCH", "POST", "PUT"]
    cached_methods   = ["GET", "HEAD"]
    target_origin_id = local.s3_origin_id

    forwarded_values {
      query_string = false 

      cookies {
        forward = "none"
      }
    }

    viewer_protocol_policy = "allow-all"
    min_ttl                = 0
    default_ttl            = 3600
    max_ttl                = 86400
  }

  # Cache behavior with precedence 0
  ordered_cache_behavior {
    path_pattern     = "/content/immutable/*"
    allowed_methods  = ["GET", "HEAD", "OPTIONS"]
    cached_methods   = ["GET", "HEAD", "OPTIONS"]
    target_origin_id = local.s3_origin_id

    forwarded_values {
      query_string = false
      headers      = ["Origin"] 

      cookies {
        forward = "none"
      }
    }

    min_ttl                = 0
    default_ttl            = 86400
    max_ttl                = 31536000
    compress               = true
    viewer_protocol_policy = "redirect-to-https"
  }

  # Cache behavior with precedence 1
   ordered_cache_behavior {
    path_pattern     = "/content/*"
    allowed_methods  = ["GET", "HEAD", "OPTIONS"]
    cached_methods   = ["GET", "HEAD"]
    target_origin_id = local.s3_origin_id 

    forwarded_values {
      query_string = false

      cookies {
        forward = "none"
      }
    }

    min_ttl                = 0
    default_ttl            = 3600
    max_ttl                = 86400
    compress               = true
    viewer_protocol_policy = "redirect-to-https"
  }

  price_class = "PriceClass_200"

  restrictions {
    geo_restriction {
      restriction_type = "whitelist"
      locations        = ["US", "CA", "GB", "DE"]
    }
  }

  tags = {
    Environment = "production"
  }

  viewer_certificate {
    cloudfront_default_certificate = true
  }
}


Import[edit]

Related terms[edit]

Activities[edit]

See also[edit]

  • https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudfront_distribution
  • Advertising: